 |
|
|
|
 |
 |
 |
|
 |
|
 |
|
|
| 张帆,徐明迪,赵涵捷,张聪,刘小丽,胡方宁.软件实时可信度量:一种无干扰行为可信性分析方法.软件学报,2019,30(8):0 |
| 软件实时可信度量:一种无干扰行为可信性分析方法 |
| Realtime Trust Measurement of Software:A Behavior Trust Analysis Approach Based on Noninterference |
| 投稿时间:2018-06-04 修订日期:2018-09-21 |
| DOI:10.13328/j.cnki.jos.005768 |
| 中文关键词: 可信度量 无干扰 行为可信 可信计算 软件安全 |
| 英文关键词:trust measurement noninterference behavior trust trusted computing software security |
| 基金项目:国家自然科学基金(61502438);湖北省自然科学基金重点项目(2015CFA061) |
|
| 摘要点击次数: 260 |
| 全文下载次数: 122 |
| 中文摘要: |
| 可信度量作为可信计算"度量、存储、报告"三大核心功能的基础,到目前为止仍然没有有效的数学理论以及运行时(runtime)度量方法.其困难在于三点,一是如何建立涵盖不同主流"可信"定义的通用数学模型;二是如何依托数学模型构建运行时可信度量理论;三是如何将上述模型和理论映射到真实信息系统以形成可实践的实时度量方法.提出了一种基于无干扰的软件实时可信度量方法.首先,利用无干扰模型解释了各类主流的可信定义,表明无干扰模型可以作为可信计算通用数学模型的一个选择.其次,基于无干扰模型提出了一种软件实时可信度量理论.其基本思想是:将系统调用视作原子动作,将软件真实行为α看做系统调用的序列,并基于α中所有系统调用所属安全域之间的无干扰关系计算软件理论上的预期行为β.得到α和β之后,利用无干扰等式判定两者之间是否存在偏差,从而实现对软件可信性的实时度量.最后,给出了实时可信度量算法,算法的时间复杂性为O(1),就我们尽可能的调研而言,这在已有工作中是最优的.原型实验表明了方法的有效性. |
| 英文摘要: |
Trust measurement,which is the basis of "measurement,storage,and reporting" of trusted computing,is still lack of mathematical theory and has few applications in a real-time environment thus far.The difficulty lies in three points.One is how to establish a general mathematical model that can cover different mainstream definitions of "trust";the second is how to build a runtime trust measurement theory based on the established mathematical model;and the third is how to map the above the model and theory to real information systems,and therefore form a practical real-time measurement method.
To address the above issues,a runtime software trust measurement approach is proposed.Initially,a noninterference model is leveraged to explain different mainstream definitions of trust,indicating that noninterference model can be an appropriate option of general mathematical model for trusted computing.Next,a noninterference model-based real-time trust measurement theory is presented.In our trust measurement theory,a system call is processed as an atomic action,and the sequence of system calls is constructed as the real behaivior of a process.Note that every system call belongs to a security domain,and different security domains are of noninterference with each other.Therefore,after obtaining a real behaivor α,the theoretically expected behavior β can be calculated based on the noninterference relations between security domains to which system calls in α belong.Once obtaining α and β,the trust of a process can be measured by determining whether two behaivors α and β deviates.Finally,a trust measurement algorithm is given.The algorithm can determine whether a process trust or not,i.e.,whether the real behavior α and the theoretically expected behavior β deviates,within the time complexity of O(1).To the best of our knowledge,the time complexity is the best among all existing work.We also apply our theory into real information system,and experimental results showed that our approach is effective and efficient. |
|
HTML 下载PDF全文 查看/发表评论 下载PDF阅读器 |
|
|
|
|
|
|
 |
|
|
|
|
 |
|
 |
|
 |
|
